SecurityRatty: Latest Articles

SIEM: the Answer to Awkward Security Questions

2009-01-08 00:03:24 by Editor in Help Net Security - Articles

Whats the one security question that you dont want to be asked about your company? I believe its the same question that Her Majesty the Queen raised when she visited the London School of Economics

Tags: question, security question, london school, economics, majesty, company

Terror, Anthrax, Explosives and More in Free, Downloadable 'Counterterrorism Calendar'

2009-01-08 00:00:00 by David Kravets in Wired Security

The Justice Department puts out a free 2009 calendar depicting some of America's most wanted terror suspects, complete with info on explosives and biological and chemical threats. Get yours while supplies last

Tags: explosives, justice department, chemical threats, calendar, free, terror suspects, info, america, supplies

Being Probed for phpMyAdmin ?

2009-01-07 23:26:04 by Erik Heidt in Art of Information Security

...information available to attackers during the reconnaissance portion of their attacks If you lock down mywebsite.com/admin as described in the Apache How-To above, and you have additional directories under this mywebsite.com/admin/phpMyAdmin and mywebsite.com/admin/keys2Kingdom they will not be visible to the attacker (until they guess the...

Tags: linux host, host, time, php, password, phpmyadmin, confirm strong passwords, strong passwords, password generator

NYC Skank Sues Google

2009-01-07 21:40:06 by Editor in Digg / Security

A former Australian Vogue cover model is suing Google to help her find the identity of an anonymous blogger who dubbed her Skankiest in NYC

Tags: google, nyc, anonymous blogger, identity

Anti-Debugging Series - Part III

2009-01-07 20:54:48 by Tyler Shields in Zero in a bit

...InformationProcess function which is used to retrieve information about a target process. The function prototype looks like the following NTSTATUS WINAPI NtQueryInformationProcess( in HANDLE ProcessHandle, in PROCESSINFOCLASS ProcessInformationClass, out PVOID ProcessInformation, in ULONG ProcessInformationLength, out opt PULONG ReturnLength...

Tags: api based, api, api calls, function, function call takes, pointer, function pointer, call, function prototype

Terrorists Could Enlist '6-Legged Soldiers' in Bio-Attack

2009-01-07 16:55:00 by Nathan Hodge in Wired Security

Terrorists could easily contrive an "insect-based" weapon to import an exotic disease, says least a University of Wyoming entomologist

Tags: exotic disease, easily contrive, terrorists, entomologist, university, weapon, import

Devolution and data-centric security

2009-01-07 15:24:00 by Manu Namboodiri in Data Protection, Management and Leakage

...information-centric security completely - and as in the case of all technology, there will always be work to be done! Therefore, one will be working with some sort of hybrid solutions for a while. There will still be areas where protecting the device or the network will make sense - these tools are widely available and have become mature....

Tags: data, data-centric security space, data elements, protect data, protect, andy jaquith, andy, approach, logical

The NSA on the Origins of the NSA

2009-01-07 13:39:32 by schneier in Schneier on Security

From its website

Tags: website

CryptolA domain specific language for Cryptography

2009-01-07 12:39:16 by Editor in IT Security - The IT Security Industry's Web Resource

Interesting a language just for cryptographic algorithms Cryptol is a language for writing specifications for cryptographic algorithms. It is also a tool set for producing high-assurance, efficient implementations in VHDL, C, and Haskell. The Cryptol tools include the ability to equivalence check the reference specification against an...

Tags: language, cryptographic algorithms, cryptol, cryptol tools include, equivalence check, white paper, web site, reference specification, tool set

Agents of 'cybergeddon' cannot go it alone, they need our help

2009-01-07 12:33:28 by Editor in Adventures in Security

Alright, the term "cybergeddon" might be too dramatic, but the truth is we are vulnerable to government or terrorist sponsored attacks against critical systems. It isnt enough anymore to release a statement that no known exploits resulted from a breach. What we need from our business and government leaders when a breach happens--hether data...

Tags: government leaders, government, hether data, critical systems, cybergeddon, breach, weak security, attacks, anymore

Your name:
Your email:
Describe a problem:
AntiSPAM Validation:

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo